Hi guys
I have idea to protect my applications using Google Cloud Armor. It’s application like Minecraft server and it use specific nonHTTP port and unique TCP-protocol (non HTTP, gRPC, Websocket and other popular).
Does standard load balancer in Google Cloud provide DDoS protection L3/L4 for such case? Or I need Google Cloud Armor for such protection? Does Armor work with nonHTTP service and on L3/L4?
Hi @runluckyfox ,
Welcome to Google Cloud Community!
A standard load balancer does offer some basic DDoS protection for Layer 3 and Layer 4 but I believe lacks the enhanced non-HTTP protection. You may want to check out using External passthrough Network Load Balancer (TCP/UDP) with Cloud Armor.
So yes, Cloud Armor is going to be beneficial for your use case. I highly recommend Cloud Armor alongside a TCP/UDP Load Balancer as it offers enhanced DDoS protection for non-HTTP services.
I hope the above information is helpful.